Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-HpLbT7D74cOQezDpZi15wxIkIw.roa
File: -HpLbT7D74cOQezDpZi15wxIkIw.roa (raw, json)
Hash identifier: jGIfD6KfCAsEWEbrC0gjeozyndEnY75aIFglpuRhzMU=
Subject key identifier: F8:7A:4B:6D:3E:C3:EF:87:0E:41:EC:C3:A5:98:B5:E7:0C:48:90:8C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B84
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-HpLbT7D74cOQezDpZi15wxIkIw.roa
Signing time: Wed 29 Sep 2021 02:46:42 +0000
ROA not before: Wed 29 Sep 2021 02:46:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7044 (0x1b84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F87A4B6D3EC3EF870E41ECC3A598B5E70C48908C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2d:f7:11:0c:ab:e3:d9:2d:86:b9:c7:9f:1f:
23:7f:be:c5:52:77:a0:bb:67:d8:47:57:51:75:74:
a4:19:86:9f:6a:00:f8:32:a2:6e:6a:94:e8:8b:6c:
23:bb:72:c3:bc:55:6a:64:16:20:26:10:7c:0d:ca:
25:d4:f5:a0:83:c6:79:db:0d:96:8f:45:86:f1:9f:
60:7b:b9:2a:d5:d9:d1:3f:de:a7:59:66:65:66:28:
c2:85:a1:55:4a:1b:be:62:1e:fd:cb:24:5f:a9:7b:
04:83:93:0d:aa:c6:e5:5a:26:55:1f:9d:82:a1:13:
a5:ba:3e:27:58:b8:35:fe:a9:6b:15:29:b3:23:9a:
d6:5a:5f:6f:e0:95:70:d5:7f:6e:ef:d6:da:14:ac:
7d:fe:b6:22:f9:cb:3c:36:99:05:1c:97:03:f2:9b:
e1:c9:0a:68:ee:3d:6e:b2:22:f9:6b:9a:08:1b:88:
85:97:6e:95:c2:0d:42:b4:b2:0c:a9:13:28:8b:f7:
b4:4a:71:c1:e4:82:d3:9f:38:1f:da:1d:53:30:9f:
26:3a:28:72:58:c0:0e:e2:46:64:bf:9a:b6:59:12:
0d:ce:62:ff:54:b4:66:ab:46:53:c0:ca:1b:9e:13:
df:9d:2a:29:87:ce:07:3a:a8:34:bc:35:97:0c:49:
9a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:7A:4B:6D:3E:C3:EF:87:0E:41:EC:C3:A5:98:B5:E7:0C:48:90:8C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-HpLbT7D74cOQezDpZi15wxIkIw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.216.0/21
Signature Algorithm: sha256WithRSAEncryption
49:1d:0a:98:d2:26:8e:0b:fd:8a:b8:13:78:a2:8d:da:d0:d0:
d5:e3:9c:a0:96:59:df:7f:21:0a:e0:4a:44:0d:59:9f:58:dd:
0c:04:30:b2:fe:12:3d:e9:99:b6:31:ed:8d:0d:ce:e1:5f:d6:
57:88:d7:ec:17:7b:a5:da:6b:49:99:20:2d:fa:17:3d:d9:06:
56:bb:60:81:5f:62:a7:db:d8:af:63:1e:c5:bc:de:c3:92:07:
9f:80:8a:95:a0:ab:02:f0:1c:03:5a:04:41:4f:73:29:40:7c:
c3:42:c0:c2:9c:7f:30:17:55:e3:1e:a3:ba:0a:9f:64:85:2b:
a0:d8:7b:52:7d:8c:22:6e:52:e1:d0:08:34:cc:e3:69:28:5c:
44:0a:41:a4:0e:ed:9a:d0:b2:cd:fa:12:71:68:d7:30:29:4b:
5a:c8:ca:75:23:2d:63:69:be:39:4e:f8:8b:de:f9:4f:e4:99:
59:40:00:49:db:7b:c1:25:12:dd:b9:e8:df:3e:47:94:21:db:
ac:26:a3:ee:22:a6:67:4b:1f:2a:23:a3:d7:10:e6:12:14:09:
b6:c2:6e:aa:13:6f:86:cb:bc:87:0b:03:05:04:7b:e0:fb:d8:
93:b9:e1:e6:9c:ef:d1:6f:39:12:3b:48:1b:64:f2:89:d5:1f:
c4:4c:79:2f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICG4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ2NDJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEY4N0E0QjZEM0VDM0VG
ODcwRTQxRUNDM0E1OThCNUU3MEM0ODkwOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxLfcRDKvj2S2GucefHyN/vsVSd6C7Z9hHV1F1dKQZhp9qAPgy
om5qlOiLbCO7csO8VWpkFiAmEHwNyiXU9aCDxnnbDZaPRYbxn2B7uSrV2dE/3qdZ
ZmVmKMKFoVVKG75iHv3LJF+pewSDkw2qxuVaJlUfnYKhE6W6PidYuDX+qWsVKbMj
mtZaX2/glXDVf27v1toUrH3+tiL5yzw2mQUclwPym+HJCmjuPW6yIvlrmggbiIWX
bpXCDUK0sgypEyiL97RKccHkgtOfOB/aHVMwnyY6KHJYwA7iRmS/mrZZEg3OYv9U
tGarRlPAyhueE9+dKimHzgc6qDS8NZcMSZqzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU+HpLbT7D74cOQezDpZi15wxIkIwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy1IcExiVDdENzRjT1FlekRw
WmkxNXd4SWtJdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wtgwDQYJKoZIhvcNAQELBQADggEBAEkdCpjSJo4L/Yq4E3iijdrQ0NXjnKCWWd9/
IQrgSkQNWZ9Y3QwEMLL+Ej3pmbYx7Y0NzuFf1leI1+wXe6Xaa0mZIC36Fz3ZBla7
YIFfYqfb2K9jHsW83sOSB5+AipWgqwLwHANaBEFPcylAfMNCwMKcfzAXVeMeo7oK
n2SFK6DYe1J9jCJuUuHQCDTM42koXEQKQaQO7ZrQss36EnFo1zApS1rIynUjLWNp
vjlO+Ive+U/kmVlAAEnbe8ElEt256N8+R5Qh26wmo+4ipmdLHyojo9cQ5hIUCbbC
bqoTb4bLvIcLAwUEe+D72JO54eac79FvORI7SBtk8onVH8RMeS8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:26 2025 by rpki-client